Cyber Security Engineer Senior

General Dynamics Information TechnologyUSA MD Home Office (MDHOME), MD
$97,968 - $120,750Remote

About The Position

Advance your career while impacting our national security in cyber as a Cybersecurity Engineer Senior at GDIT. Here, technologists have many paths to grow a meaningful career supporting cyber missions and operations across the federal government. As a Cybersecurity Engineer Senior, the work you’ll do at GDIT will be impactful to the mission supporting security infrastructure for the CMS Center for Clinical Standards and Quality (CCSQ). You will play a crucial role in joining our team as a subject matter expert for all activities related to implementing, configuring, and maintaining security tools including SkyHigh Web Gateway, CISCO FirePower, CrowdStrike Falcon, and Palo Alto NGFW, and responding to potential and confirmed security incidents in the CCSQ Cloud Environment. They work with an existing team of Cyber Security Engineers, who in turn support privacy and security of the cloud program and advise application development teams hosted in the cloud environment in addressing findings from the security tools managed by this team of professionals, patching said tools for optimal security posture, and responding to application block requests and troubleshooting inquiries.

Requirements

  • Bachelor's Degree in Computer Science or related technical discipline, or the equivalent combination of education, technical certifications or training, or work experience
  • 5+ years of related experience in maintaining security systems in cloud environments
  • Experience in Amazon Web Services (AWS) Cloud Environments and the CMS CCSQ/QNET a must.
  • Documented history configuring, maintaining, tuning, reporting, remediating from multiple security tools and services.
  • Background in AWS Security services including Guard Duty, Security Hub, Inspector.
  • Proven ability to resolve security findings from security scanning.
  • Ability to pivot and learn new tools on demand.
  • Knowledge of system hardening benchmarks such as USGCB & STIG.
  • SEIM experience with Splunk
  • Strong background with AWS security concepts, tools, and services.
  • Ability to work in fast paced environment, Self-motivated with a strong ability to work in a multi-tasking and changing environment.
  • Experience working in an Agile environment.
  • Demonstrated experience with and exposure to the above stated security appliances.

Nice To Haves

  • Certification in cloud security, such as AWS Certified Security Specialty, CISSP, or security related discipline
  • Strong understanding of key management and certificate management
  • Knowledge of system hardening benchmarks such as CIS
  • Experience with Crowdtrike Falcon, Palo Alto NGFW & Snyk

Responsibilities

  • Administering, configuring, deploying, and maintaining Cisco FirePower Threat Defense (FTD) and SkyHigh Web Gateway appliances across the authorization boundary and enterprise-level environments.
  • Implement advanced intrusion prevention systems (IPS) using CISCO FirePower to identify and block malicious traffic.
  • Implement CISCO routers (CSRs) to do Policy Based Routing (PBR) on all network traffic from the Virtual Private Clouds (VPC).
  • Design and optimize Security Rule Sets (SRUs) and tailor policies to meet organizational and mission-critical security requirements.
  • Perform threat analysis, event correlation, and deep packet inspection to mitigate emerging cyber threats.
  • Configure and manage Cisco FireSight/FirePower Management Center (FMC) for centralized policy management, event monitoring, and system reporting.
  • Integrate FirePower NGIPS with other security solutions such as SIEM or SOAR platforms to enable automated threat response capabilities.
  • Perform system upgrades, signature/engine updates, and antivirus pattern maintenance to ensure continued protection.
  • Conduct regular audits and vulnerability assessments within FirePower systems to identify gaps in coverage.
  • Troubleshoot Cisco FirePower appliances for performance issues, ensuring high availability and resilience across the network.
  • Collaborate with cross-functional IT and security teams to optimize firewall configurations and enforce Zero Trust principles.
  • Collaborate with CCSQ Security Operations Center (SOC), Cloud Solutions Engineers, and Application Development Organizations on blocking notifications and proactive optimization of the tools.
  • Create and maintain detailed documentation for system configurations, policies, procedures, and operational tasks.
  • Provide technical expertise, guidance, and training to internal teams on Cisco FirePower operations and best practices.
  • Support Security audits as needed and to advise ADO from a Tier2 or 3 perspective and to support security events of interest.

Benefits

  • 401K with company match
  • competitive pay
  • paid time off
  • variety of medical plan options
  • dental plan options
  • vision plan
  • 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match.
  • full flex work weeks
  • variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave.
  • 15 days of paid leave per calendar year to be used for vacations, personal business, and illness
  • 10 paid holidays per year
  • Paid Family Leave program provides a total of up to 160 hours of paid leave in a rolling 12 month period for eligible employees.
  • short and long-term disability benefits
  • life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service